goma-gateway/internal/proxy.go

package pkg

/*
Copyright 2024 Jonas Kaninda

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
import (
	"fmt"
	"github.com/jkaninda/goma-gateway/internal/middleware"
	"github.com/jkaninda/goma-gateway/pkg/logger"
	"net/http"
	"net/http/httputil"
	"net/url"
	"slices"
	"strings"
	"sync/atomic"
)

// ProxyHandler proxies requests to the backend
func (proxyRoute ProxyRoute) ProxyHandler() http.HandlerFunc {
	return func(w http.ResponseWriter, r *http.Request) {
		logger.Info("%s %s %s %s", r.Method, getRealIP(r), r.URL.Path, r.UserAgent())
		logger.Trace("Request params: %s", r.URL.RawQuery)
		logger.Trace("Request Headers: %s", r.Header)
		// Check Method if is allowed
		if len(proxyRoute.methods) > 0 {
			if !slices.Contains(proxyRoute.methods, r.Method) {
				logger.Error("%s Method is not allowed", r.Method)
				middleware.RespondWithError(w, http.StatusMethodNotAllowed, fmt.Sprintf("%d %s method is not allowed", http.StatusMethodNotAllowed, r.Method), proxyRoute.ErrorInterceptor)
				return
			}
		}
		// Set CORS headers from the cors config
		//Update Cors Headers
		for k, v := range proxyRoute.cors.Headers {
			w.Header().Set(k, v)
		}
		if allowedOrigin(proxyRoute.cors.Origins, r.Header.Get("Origin")) {
			// Handle preflight requests (OPTIONS)
			if r.Method == "OPTIONS" {
				w.Header().Set(accessControlAllowOrigin, r.Header.Get("Origin"))
				w.WriteHeader(http.StatusNoContent)
				return
			} else {
				w.Header().Set(accessControlAllowOrigin, r.Header.Get("Origin"))
			}
		}
		// Parse the target backend URL
		targetURL, err := url.Parse(proxyRoute.destination)
		if err != nil {
			logger.Error("Error parsing backend URL: %s", err)
			middleware.RespondWithError(w, http.StatusInternalServerError, http.StatusText(http.StatusInternalServerError), proxyRoute.ErrorInterceptor)
			return
		}
		r.Header.Set("X-Forwarded-Host", r.Header.Get("Host"))
		r.Header.Set("X-Forwarded-For", getRealIP(r))
		r.Header.Set("X-Real-IP", getRealIP(r))
		// Update the headers to allow for SSL redirection
		if proxyRoute.disableHostFording {
			r.URL.Scheme = targetURL.Scheme
			r.Host = targetURL.Host
		}
		backendURL, _ := url.Parse(proxyRoute.destination)
		if len(proxyRoute.backends) > 0 {
			// Select the next backend URL
			backendURL = getNextBackend(proxyRoute.backends)
		}
		// Create proxy
		proxy := httputil.NewSingleHostReverseProxy(backendURL)
		// Rewrite
		if proxyRoute.path != "" && proxyRoute.rewrite != "" {
			// Rewrite the path
			if strings.HasPrefix(r.URL.Path, fmt.Sprintf("%s/", proxyRoute.path)) {
				r.URL.Path = strings.Replace(r.URL.Path, fmt.Sprintf("%s/", proxyRoute.path), proxyRoute.rewrite, 1)
			}
		}
		w.Header().Set("Proxied-By", gatewayName) //Set Server name
		w.Header().Del("Server")                  // Remove the Server header
		// Custom error handler for proxy errors
		proxy.ErrorHandler = ProxyErrorHandler
		proxy.ServeHTTP(w, r)
	}
}

// getNextBackend selects the next backend in a round-robin fashion
func getNextBackend(backendURLs []string) *url.URL {
	idx := atomic.AddUint32(&counter, 1) % uint32(len(backendURLs))
	backendURL, _ := url.Parse(backendURLs[idx])
	return backendURL
}
Initial commit 2024-10-27 06:10:27 +01:00			`package pkg`

			`/*`
			`Copyright 2024 Jonas Kaninda`

			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`
			`import (`
			`"fmt"`
refactor: improve error interceptor 2024-11-14 00:26:21 +01:00			`"github.com/jkaninda/goma-gateway/internal/middleware"`
refactor: Restructure project files for better organization, readability, and maintainability 2024-11-04 08:48:38 +01:00			`"github.com/jkaninda/goma-gateway/pkg/logger"`
Initial commit 2024-10-27 06:10:27 +01:00			`"net/http"`
			`"net/http/httputil"`
			`"net/url"`
feat: add limit HTTP methods allowed for a particular route 2024-11-08 22:58:09 +01:00			`"slices"`
Initial commit 2024-10-27 06:10:27 +01:00			`"strings"`
feat: add routes loadblancing 2024-11-09 10:59:17 +01:00			`"sync/atomic"`
Initial commit 2024-10-27 06:10:27 +01:00			`)`

			`// ProxyHandler proxies requests to the backend`
			`func (proxyRoute ProxyRoute) ProxyHandler() http.HandlerFunc {`
			`return func(w http.ResponseWriter, r *http.Request) {`
feat: add metrics 2024-11-10 17:06:58 +01:00			`logger.Info("%s %s %s %s", r.Method, getRealIP(r), r.URL.Path, r.UserAgent())`
feat: add log level for better debugging 2024-11-10 19:58:53 +01:00			`logger.Trace("Request params: %s", r.URL.RawQuery)`
			`logger.Trace("Request Headers: %s", r.Header)`
feat: add limit HTTP methods allowed for a particular route 2024-11-08 22:58:09 +01:00			`// Check Method if is allowed`
			`if len(proxyRoute.methods) > 0 {`
			`if !slices.Contains(proxyRoute.methods, r.Method) {`
			`logger.Error("%s Method is not allowed", r.Method)`
refactor: improve error interceptor 2024-11-14 00:26:21 +01:00			`middleware.RespondWithError(w, http.StatusMethodNotAllowed, fmt.Sprintf("%d %s method is not allowed", http.StatusMethodNotAllowed, r.Method), proxyRoute.ErrorInterceptor)`
feat: add limit HTTP methods allowed for a particular route 2024-11-08 22:58:09 +01:00			`return`
			`}`
			`}`
Initial commit 2024-10-27 06:10:27 +01:00			`// Set CORS headers from the cors config`
			`//Update Cors Headers`
			`for k, v := range proxyRoute.cors.Headers {`
			`w.Header().Set(k, v)`
			`}`
fix: route cors origin 2024-10-29 10:35:31 +01:00			`if allowedOrigin(proxyRoute.cors.Origins, r.Header.Get("Origin")) {`
			`// Handle preflight requests (OPTIONS)`
			`if r.Method == "OPTIONS" {`
			`w.Header().Set(accessControlAllowOrigin, r.Header.Get("Origin"))`
			`w.WriteHeader(http.StatusNoContent)`
			`return`
			`} else {`
			`w.Header().Set(accessControlAllowOrigin, r.Header.Get("Origin"))`
Initial commit 2024-10-27 06:10:27 +01:00			`}`
			`}`
			`// Parse the target backend URL`
			`targetURL, err := url.Parse(proxyRoute.destination)`
			`if err != nil {`
			`logger.Error("Error parsing backend URL: %s", err)`
refactor: improve error interceptor 2024-11-14 00:26:21 +01:00			`middleware.RespondWithError(w, http.StatusInternalServerError, http.StatusText(http.StatusInternalServerError), proxyRoute.ErrorInterceptor)`
Initial commit 2024-10-27 06:10:27 +01:00			`return`
			`}`
fix: fix host forwrading 2024-11-12 17:38:55 +01:00			`r.Header.Set("X-Forwarded-Host", r.Header.Get("Host"))`
			`r.Header.Set("X-Forwarded-For", getRealIP(r))`
			`r.Header.Set("X-Real-IP", getRealIP(r))`
Initial commit 2024-10-27 06:10:27 +01:00			`// Update the headers to allow for SSL redirection`
fix: fix host forwording 2024-11-12 18:14:50 +01:00			`if proxyRoute.disableHostFording {`
Initial commit 2024-10-27 06:10:27 +01:00			`r.URL.Scheme = targetURL.Scheme`
fix: fix host forwrading 2024-11-12 17:17:22 +01:00			`r.Host = targetURL.Host`
Initial commit 2024-10-27 06:10:27 +01:00			`}`
feat: add routes loadblancing 2024-11-09 10:59:17 +01:00			`backendURL, _ := url.Parse(proxyRoute.destination)`
			`if len(proxyRoute.backends) > 0 {`
			`// Select the next backend URL`
			`backendURL = getNextBackend(proxyRoute.backends)`
			`}`
Initial commit 2024-10-27 06:10:27 +01:00			`// Create proxy`
feat: add routes loadblancing 2024-11-09 10:59:17 +01:00			`proxy := httputil.NewSingleHostReverseProxy(backendURL)`
Initial commit 2024-10-27 06:10:27 +01:00			`// Rewrite`
			`if proxyRoute.path != "" && proxyRoute.rewrite != "" {`
			`// Rewrite the path`
			`if strings.HasPrefix(r.URL.Path, fmt.Sprintf("%s/", proxyRoute.path)) {`
			`r.URL.Path = strings.Replace(r.URL.Path, fmt.Sprintf("%s/", proxyRoute.path), proxyRoute.rewrite, 1)`
			`}`
			`}`
feat: Add wildcard auth middleware paths (#24) * chore: add concurrent route health check requests * feat: Add wildcard auth middleware paths * fix: bind privileged port permission denied on Kubernetes for nonroot user 2024-11-02 11:55:37 +01:00			`w.Header().Set("Proxied-By", gatewayName) //Set Server name`
chore: remove server name 2024-11-09 05:45:49 +01:00			`w.Header().Del("Server") // Remove the Server header`
Initial commit 2024-10-27 06:10:27 +01:00			`// Custom error handler for proxy errors`
			`proxy.ErrorHandler = ProxyErrorHandler`
			`proxy.ServeHTTP(w, r)`
			`}`
			`}`
feat: add routes loadblancing 2024-11-09 10:59:17 +01:00
			`// getNextBackend selects the next backend in a round-robin fashion`
			`func getNextBackend(backendURLs []string) *url.URL {`
			`idx := atomic.AddUint32(&counter, 1) % uint32(len(backendURLs))`
			`backendURL, _ := url.Parse(backendURLs[idx])`
			`return backendURL`
			`}`